Gallery is possibly vulnerable to a cross-site scripting attack that could allow arbitrary JavaScript code execution.

Background

Gallery is a web application written in PHP which is used to organize and publish photo albums. It allows multiple users to build and maintain their own albums. It also supports the mirroring of images on other servers.